Bank of models : sensor attack detection and isolation in industrial control systems

Ahmed, Chuadhry Mujeeb and Zhou, Jianying (2021) Bank of models : sensor attack detection and isolation in industrial control systems. In: The 16th International Conference on Critical Information Infrastructures Security, 2021-09-27 - 2021-09-29, EPFL SwissTech Convention Center.

[thumbnail of Ahmed-Zhou-CRITIS-2021-Bank-of-models-sensor-attack-detection-and-isolation]
Preview
Text. Filename: Ahmed_Zhou_CRITIS_2021_Bank_of_models_sensor_attack_detection_and_isolation.pdf
Accepted Author Manuscript

Download (6MB)| Preview

Abstract

Attacks on sensor measurements can take the system to an unwanted state. The disadvantage of using a system model-based approach for attack detection is that it could not isolate which sensor was under attack. For example, if one of two sensors that are physically coupled is under attack, the attack would reflect in both. In this work, we propose an attack detection and isolation technique using a multi-model framework named Bank of Models (BoM) in which the same process will be represented by multiple system models. This technique can achieve higher accuracy for attack detection with low false alarm rates. We make extensive empirical performance evaluation on a realistic ICS testbed to demonstrate the viability of this technique.

ORCID iDs

Ahmed, Chuadhry Mujeeb ORCID logoORCID: https://orcid.org/0000-0003-3644-0465 and Zhou, Jianying;